Combo Fix
This document was uploaded by user and they confirmed that they have the permission to share it. If you are author or own the copyright of this book, please report to us by using this DMCA report form. Report DMCA
Overview
Download & View Combo Fix as PDF for free.
More details
- Words: 286
- Pages: 2
ComboFix 08-03-18.1 - user 2008-03-20 16:54:17.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.50 [GMT 8:00] Running from: C:\Documents and Settings\user\Desktop\ComboFix.exe * Created a new restore point [color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color] . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\SCVVHSOT.exe C:\WINDOWS\system32\autorun.ini C:\WINDOWS\system32\blastclnnn.exe C:\WINDOWS\system32\SCVVHSOT.exe C:\WINDOWS\system32\setting.ini E:\autorun.inf E:\SCVVHSOT.exe . ((((((((((((((((((((((((( Files Created from 2008-02-20 to 2008-03-20 ))))))))))))))))))))))))))))))) . No new files created in this timespan . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-13 08:52 --------d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-05-13 08:52 --------d-----w C:\Program Files\PC Tools AntiVirus 2008-05-08 08:29 --------d-----w C:\Program Files\Yahoo! 2008-05-08 08:29 --------d-----w C:\Program Files\CCleaner 2008-05-08 08:13 --------d-----w C:\Program Files\Common Files\PC Tools 2008-05-08 08:13 --------d-----w C:\Documents and Settings\user\Application Data\PC Tools 2008-05-08 08:13 --------d-----w C:\Documents and Settings\All Users\Application Data\PC Tools 2008-05-08 01:11 --------d-----w C:\Documents and Settings\user\Application Data\TypingMaster7 2008-05-08 01:11 --------d-----r C:\Program Files\TypingMaster 2008-05-08 01:10 --------d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-05-07 07:14 --------d-----w C:\Program Files\Realtek AC97 2008-05-07 07:13 --------d--h--w C:\Program Files\InstallShield Installation Information 2008-05-07 07:13 --------d-----w C:\Program Files\S3 2008-05-07 07:12 --------d-----w C:\Program Files\Common Files\InstallShield 2008-05-07 06:28 --------d-----w C:\Program Files\microsoft frontpage 2008-02-12 02:44 21,904 ----a-w C:\WINDOWS\system32\drivers\AVFilter.sys . (((((((((((((((((((((((((((((((((((((
Reg Loading Points
)))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "VTTimer"="VTTimer.exe" [2006-06-16 10:33 53248 C:\WINDOWS\system32\VTTimer.exe] "S3Trayp"="S3trayp.exe" [2005-11-01 03:15 163840 C:\WINDOWS\system32\S3Trayp.exe] "SoundMan"="SOUNDMAN.EXE" [2006-06-21 05:42 577536 C:\WINDOWS\soundman.exe] "PCTAVApp"="C:\Program Files\PC Tools AntiVirus\PCTAV.exe" [2008-03-05 09:37 1238928] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Yahoo Messengger"="C:\WINDOWS\system32\SCVVHSOT.exe" [ ] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Authorized Applications\List] "%windir%\\system32\\sessmgr.exe"= R1 BIOS;BIOS;C:\WINDOWS\system32\drivers\BIOS.sys [2005-03-16 14:23] R3 S3GIGP;S3GIGP;C:\WINDOWS\system32\DRIVERS\S3gIGPm.sys [2006-06-23 02:23] . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-03-20 16:55:09 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-03-20 16:55:28 ComboFix-quarantined-files.txt 2008-03-20 08:55:24
Reg Loading Points
)))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "VTTimer"="VTTimer.exe" [2006-06-16 10:33 53248 C:\WINDOWS\system32\VTTimer.exe] "S3Trayp"="S3trayp.exe" [2005-11-01 03:15 163840 C:\WINDOWS\system32\S3Trayp.exe] "SoundMan"="SOUNDMAN.EXE" [2006-06-21 05:42 577536 C:\WINDOWS\soundman.exe] "PCTAVApp"="C:\Program Files\PC Tools AntiVirus\PCTAV.exe" [2008-03-05 09:37 1238928] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Yahoo Messengger"="C:\WINDOWS\system32\SCVVHSOT.exe" [ ] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Authorized Applications\List] "%windir%\\system32\\sessmgr.exe"= R1 BIOS;BIOS;C:\WINDOWS\system32\drivers\BIOS.sys [2005-03-16 14:23] R3 S3GIGP;S3GIGP;C:\WINDOWS\system32\DRIVERS\S3gIGPm.sys [2006-06-23 02:23] . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-03-20 16:55:09 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-03-20 16:55:28 ComboFix-quarantined-files.txt 2008-03-20 08:55:24
